From owner-freebsd-questions@FreeBSD.ORG  Mon Jun 21 21:24:58 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 492D716A4CE
	for <freebsd-questions@FreeBSD.org>;
	Mon, 21 Jun 2004 21:24:58 +0000 (GMT)
Received: from smtpout.mac.com (smtpout.mac.com [17.250.248.45])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 3B13E43D4C
	for <freebsd-questions@FreeBSD.org>;
	Mon, 21 Jun 2004 21:24:58 +0000 (GMT)	(envelope-from cswiger@mac.com)
Received: from mac.com (smtpin07-en2 [10.13.10.152])
	by smtpout.mac.com (Xserve/MantshX 2.0) with ESMTP id i5LLOvGJ018145;
	Mon, 21 Jun 2004 14:24:57 -0700 (PDT)
Received: from [10.1.1.193] (nfw2.codefab.com [199.103.21.225] (may be
	forged))	(authenticated bits=0)i5LLOuAx018067;
	Mon, 21 Jun 2004 14:24:57 -0700 (PDT)
In-Reply-To: <BKECJPEPGLFKCMMJOOFACELFCCAA.desol@telus.net>
References: <BKECJPEPGLFKCMMJOOFACELFCCAA.desol@telus.net>
Mime-Version: 1.0 (Apple Message framework v618)
Content-Type: text/plain; charset=US-ASCII; format=flowed
Message-Id: <716BFBC3-C3C9-11D8-BF1C-003065ABFD92@mac.com>
Content-Transfer-Encoding: 7bit
From: Charles Swiger <cswiger@mac.com>
Date: Mon, 21 Jun 2004 17:24:56 -0400
To: Dj Uwins <desol@telus.net>
X-Mailer: Apple Mail (2.618)
cc: freebsd-questions@FreeBSD.org
Subject: Re: Msn Voice conversation
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Jun 2004 21:24:58 -0000

On Jun 21, 2004, at 4:21 PM, Dj Uwins wrote:
> I'm trying to get msn voice conversation working through NATD. I've 
> been
> reading alot of posts and there are others who can't seem to get this
> working by trying to forward ports in natd.conf.

Yes, the H.323 protocol family is a nightmare in terms of complexity 
and it simply doesn't play nice with NAT or reasonable firewall 
configurations.  My recommendation would be to block the H.323 protocol 
entirely and use something else rather than compromise one's security.

> Does anyone know how to make this happen?

This is a hard problem which may not be solvable without paying license 
fees for proprietary H.323 resources and documentation.  Have you 
looked into getting a commercial firewall which supports H.323 proxying 
via NAT...?

-- 
-Chuck